Document 



N 



12 



Sending Fax 
Machine 



14 




.DAP. 





"22 



,30 



Document 



Key 



Cert 



\24 ll \{\ 



Receiving Fax Machine 



Figure 1 



28 
26 




Store of 
certificates 



32 



Document 
printed out 



\ 



V 



34 




Figure 3 



Scan in document into fax machine and 
identify intended recipient. 
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Request and obtain a copy of the intended 
recipient's Certificate from Ldap. 
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Select a session key for use in 
communication with the intended recipient. 
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Encrypt the document using 
the selected session key. 




Encrypt a copy of the session key with 
the public key of the intended recipient 
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Send encrypted document, encrypted session key and intended 
recipient's Certificate to receiving fax machine (RFM). 



Figure 2a 



RFM receives the encrypted document, the encrypted key and 
the intended recipient's Certificate and stores these in memory. 



RFM requests the intended recipient to input their smart 
card containing the intended recipient's private key. 



Encrypted session key passed to smart card and 
decoded using intended recipient's private key. 



Decoded session key returned to RFM and used 
to decrypt the encrypted fax document. 




Check validity of certificate 
or chain of certificates. 
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Intended recipient not validated so 
do not print out received document 
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Intended recipient validated so 
print out document. 
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Notify person attempting to access received 
document that they are not authorised 
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Figure 2b 
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Scan in document into fax 
machine 



Create Digest of Document 



Confirm sender's smart card 
using PIN or a biometric 
check 



Encrypt Digest using 
private key of signer 



Request and obtain 
Certificate of signer 
including his public key 



Send document together 
with Certificate of signer 
and Digest 
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Figure 5 



Receive document, Digest 
and Certificate of sender. 
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Extract public key of sender 
and use to decode Digest. 
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Redigest document using 
same hash algorithm. 




Check validity of certificate 
or chain of certificates. 




The sender of the document 
and its contents are verified 
and can be relied upon. 
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The sender of the document or 
its contents cannot be verified 
and cannot be relied upon. 



Print verifying mark on 
paper copy of document 
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Figure 6 
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A sends its own Certificate a random integer 
'nonceA' and a request for C's Certificate to C. 
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C receives request, A's Certificate and nonceA, 
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C encrypts nonceA with its private key. 
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C sends encrypted nonceA together with its digital 
Certificate and a new random integer 'nonceC to A. 



A receives request, C's Certificate and nonceC. 
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A decodes the encrypted nonceA using C's public key and 
compares this with a previously stored version of nonceA. 




A encrypts nonceC with its private key. 



A sends encrypted nonceC to C. 



182 



-184 



C decodes the encrypted nonceC using A's public key and 
compares this with previously stored version of nonceC. 




Permit document to be 
sent from A to C. 
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Figure 8 



Irregularity in procedure detected so 
do not send or receive document. 
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